$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: xYrZU8spp3G7kQNOXUP71NdZs/m+2H2o6EyrnXE3uG8= Subject key identifier: 09:9F:CD:DC:DA:82:FC:4E:D9:7F:55:7A:0C:C2:BB:00:BC:FE:9C:73 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 015D Signing time: Mon 21 Jul 2025 04:07:16 +0000 Manifest this update: Mon 21 Jul 2025 04:07:15 +0000 Manifest next update: Mon 28 Jul 2025 04:07:15 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: NV+Jypt9hkoy45itMESXe2vhd4BjXGzZ0ENI4vKYXF0=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804, serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Jul 21 04:07:15 2025 GMT Not After : Jul 28 04:07:15 2025 GMT Subject: CN=687dbcf3-00ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b9:aa:a8:aa:2c:58:bc:e5:69:79:80:1a:34: d1:2b:20:22:f3:7b:07:1d:c9:60:c9:89:82:f1:60: fc:90:99:ed:a3:6f:e2:12:34:0c:2b:3e:1b:7e:43: 7e:cb:f2:32:0b:c5:3d:ae:d5:36:e1:75:db:fa:65: 77:38:13:34:45:b1:77:7b:0d:ff:91:8f:37:77:95: f5:3f:32:b0:14:6c:9f:7e:3d:e9:71:1c:61:74:0f: fc:47:0f:55:b9:37:35:07:f8:a2:ad:de:b0:6b:30: 00:cb:a1:f8:1f:66:7d:1c:0e:5a:bf:13:89:24:d8: c2:f9:02:48:b0:14:24:8c:f6:8e:cd:99:ab:2d:53: b0:ed:d1:47:21:d1:79:11:6b:12:52:f4:8b:ae:aa: 66:7d:96:72:48:54:ef:e2:46:3d:cd:6b:b4:66:ce: d6:c2:54:2f:24:43:05:23:85:2a:26:29:90:b2:38: d6:4e:7e:06:c8:4b:a4:b8:ed:5f:60:4f:68:67:0f: b2:2c:a8:c0:13:07:4c:e6:2e:13:7d:57:a6:81:b0: 92:ab:39:54:7b:19:ce:26:aa:1d:4e:80:ae:69:58: d5:8e:ec:f1:ee:c9:00:1b:ab:2a:28:b6:d2:b0:a7: 3d:73:d2:63:ef:6e:e6:13:e7:60:4a:d2:2b:ab:23: 37:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9F:CD:DC:DA:82:FC:4E:D9:7F:55:7A:0C:C2:BB:00:BC:FE:9C:73 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:2b:68:7d:5e:d7:e5:58:28:05:09:03:99:3f:65:c5:2b:26: 28:57:95:ac:85:3c:60:71:ee:9d:4a:1e:62:64:db:58:a5:bf: 8f:57:dc:23:6f:7a:77:be:07:1e:2d:34:69:5a:fa:3d:d3:6a: 51:fe:31:7b:5c:70:9f:f4:b3:7a:ee:b1:06:f0:bb:9e:bc:ed: e5:7c:64:81:f0:d0:f2:74:73:4d:ad:dd:ba:21:75:2c:23:0d: 65:fe:55:03:b1:01:b0:9c:27:06:0a:fd:e4:b4:b3:3d:13:d8: ed:83:3a:82:79:d1:22:47:58:f4:9d:be:c8:b6:bb:12:cd:48: c1:c0:6c:3b:97:52:1d:df:6b:88:f8:b2:57:b2:ee:9a:28:a6: 65:4a:d2:c4:d5:7e:f4:13:92:18:0b:b8:ad:ae:68:ed:62:1f: 90:81:d8:da:63:f7:4a:61:5b:80:56:fc:f1:cb:03:c7:c4:0b: 5e:05:8e:78:56:ec:bc:9f:9f:d0:ab:b6:14:4e:ca:fa:3a:73: 95:df:78:d8:96:00:b9:c5:0d:a5:1b:68:30:49:ef:ad:f9:5b: b8:7b:37:86:be:10:bd:39:ef:24:8a:72:33:00:b2:f4:18:e6: d3:3e:69:fd:27:e1:fc:72:46:73:69:44:66:dc:97:30:16:0f: d0:ab:d7:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUwNzIxMDQwNzE1WhcNMjUwNzI4MDQwNzE1WjAYMRYwFAYD VQQDEw02ODdkYmNmMy0wMGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLmqqKosWLzlaXmAGjTRKyAi83sHHclgyYmC8WD8kJnto2/iEjQMKz4bfkN+ y/IyC8U9rtU24XXb+mV3OBM0RbF3ew3/kY83d5X1PzKwFGyffj3pcRxhdA/8Rw9V uTc1B/iird6wazAAy6H4H2Z9HA5avxOJJNjC+QJIsBQkjPaOzZmrLVOw7dFHIdF5 EWsSUvSLrqpmfZZySFTv4kY9zWu0Zs7WwlQvJEMFI4UqJimQsjjWTn4GyEukuO1f YE9oZw+yLKjAEwdM5i4TfVemgbCSqzlUexnOJqodToCuaVjVjuzx7skAG6sqKLbS sKc9c9Jj727mE+dgStIrqyM3ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmfzdza gvxO2X9VegzCuwC8/pxzMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnK2h9XtflWCgFCQOZP2XFKyYoV5WshTxgce6dSh5iZNtYpb+PV9wj b3p3vgceLTRpWvo902pR/jF7XHCf9LN67rEG8LuevO3lfGSB8NDydHNNrd26IXUs Iw1l/lUDsQGwnCcGCv3ktLM9E9jtgzqCedEiR1j0nb7ItrsSzUjBwGw7l1Id32uI +LJXsu6aKKZlStLE1X70E5IYC7itrmjtYh+QgdjaY/dKYVuAVvzxywPHxAteBY54 Vuy8n5/Qq7YUTsr6OnOV33jYlgC5xQ2lG2gwSe+t+Vu4ezeGvhC9Oe8kinIzALL0 GObTPmn9J+H8ckZzaURm3JcwFg/Qq9eS -----END CERTIFICATE-----Generated at Mon Jul 21 13:19:25 2025 by rpki-client